Passwordstate, the corporate password manager, was hacked. Nearly 29,000 companies were affected by the attack. It was not disclosed what kind of data the attackers had obtained, but customers’ password information was compromised.
Click Studios, the parent company of Passwordstate, emailed 29,000 customers earlier today, TheRecord reported. The Australian software firm advised its customers to change all passwords as soon as possible.
29,000 companies now need to change their passwords
Recently, we have seen that companies and individual users are in trouble with cyberattacks. The impact of such an attack on many companies from around the world once again demonstrates the importance of cybersecurity.
The security breach was reported between April 20, 2021, and April 22, 2021. Because Passwordstate is a password manager, the attack affects not only email and user accounts, but also internal hardware and software information such as firewalls, VPNs, and so on.
The CSIS Security Group, which dealt with the attack, released details of the attack. The CSIS Security Group reports as follows:
“The security firm explained that the threat actor forced password state applications to download an additional ZIP file called ” Passwordstate_upgrade.zip “, which contains a DLL named ” moserware.secretsplitter.dll “. After setup, this DLL pings a remote command and control server where it will prompt for new commands and receive additional payloads.”
Click Studios has released a hotfix package that will help customers remove the malware from an attacker they call Moserware.
“It’s a troubling breach,” William Thomas, malware analyst at UK security firm Cyjax, told The Record. Imagine having to change all your passwords on Friday for every device on the network,” he said.
And do you think your personal information is safe? We welcome your thoughts to the comments.